US10742427B2ActiveUtilityA1

Tamper-proof secure storage with recovery

50
Assignee: DELL PRODUCTS LPPriority: Nov 16, 2017Filed: Nov 16, 2017Granted: Aug 11, 2020
Est. expiryNov 16, 2037(~11.4 yrs left)· nominal 20-yr term from priority
H04L 9/0897H04L 9/0825H04L 63/1425H04L 9/3268H04L 63/045H04L 9/0894H04L 63/0442H04L 2463/062H04L 9/0891
50
PatentIndex Score
0
Cited by
6
References
20
Claims

Abstract

Systems and methods for tamper-proof detection triggering of automatic lockdown using a recoverable encryption mechanism issued from a secure escrow service. In an illustrative, non-limiting embodiment, an Information Handling System (IHS) may include: a processor; a secure storage device coupled to the processor, wherein the secure storage device comprises a container encrypted with a derived container key; and a memory coupled to the processor, the memory including program instructions stored thereon that, upon execution, cause the IHS to: receive a digital certificate from a remote server, wherein the digital certificate includes a public key and, in response to a detection of a tampering event, encrypt the derived container key using the public key.

Claims

exact text as granted — not AI-modified
The invention claimed is: 
     
       1. An Information Handling System (IHS), comprising:
 a processor; 
 a secure storage device coupled to the processor, wherein the secure storage device comprises a container encrypted with a derived container key; and 
 a memory coupled to the processor, the memory including program instructions stored thereon that, upon execution, cause the IHS to:
 receive a digital certificate from a remote server, wherein the digital certificate includes a public key; and 
 in response to a detection of a tampering event with regard to the IHS, encrypt the derived container key using the public key received from the remote server. 
 
 
     
     
       2. The IHS of  claim 1 , further comprising a sensor coupled to the processor, the sensor configured to detect the tampering event under control of a Basic Input/Output System (BIOS) and independently of the operation of any Operating System (OS) in execution by the IHS. 
     
     
       3. The IHS of  claim 1 , wherein the sensor comprises one or more of: a current sensor, a voltage sensor, a movement sensor, a pressure sensor, a microphone, a temperature sensor, or an optical sensor. 
     
     
       4. The IHS of  claim 1 , wherein the sensor comprises a biometric sensor. 
     
     
       5. The IHS of  claim 1 , wherein the tampering event is triggered by another remote server distinct from the IHS. 
     
     
       6. The IHS of  claim 1 , wherein the tampering event is triggered in response to the other remote server receiving IHS usage data and identifying a pattern indicative of tampering in the IHS usage data. 
     
     
       7. The IHS of  claim 6 , wherein the IHS usage data includes mechanical shock events. 
     
     
       8. The IHS of  claim 6 , wherein the IHS usage data indicates a geo-fence violation. 
     
     
       9. The IHS of  claim 1 , wherein the program instructions, upon execution, cause the IHS to:
 receive a tamper policy setting from a user of the IHS; 
 determine that a type of the tampering event matches a selected type included in the tamper policy setting; and 
 take an action corresponding to the selected type. 
 
     
     
       10. The IHS of  claim 1 , wherein the action includes electronically notifying the user or an administrator of the tampering event. 
     
     
       11. The IHS of  claim 1 , wherein the program instructions, upon execution, cause the IHS to:
 establish a secure communication channel with the remote server; 
 transmit the public key-encrypted derived container key to the remote server; and 
 receive a decrypted derived container key from the remote server in response to the remote server decrypting the public key-encrypted derived container key using a private key associated with the digital certificate. 
 
     
     
       12. The IHS of  claim 11 , wherein the program instructions, upon execution, cause the IHS to:
 restore access to the secure storage by replacing the public key-encrypted derived container key with the decrypted derived container key. 
 
     
     
       13. A hardware memory device having program instructions stored thereon that, upon execution by an Information Handling System (IHS), cause the IHS to:
 receive a digital certificate from a remote server, wherein the digital certificate includes a public key; and 
 in response to a detection of a tampering event with regard to the IHS, encrypt a derived container key using the public key received from the remote server, wherein the derived container key is used to encrypt a container of a secure storage device. 
 
     
     
       14. The hardware memory device of  claim 13 , wherein the program instructions, upon execution by an Information Handling System (IHS), cause the IHS to:
 detect the tampering event using a sensor comprises one or more of: a current sensors, a voltage sensor, a movement sensor, a pressure sensor, a microphone, a temperature sensor, an optical sensor, or a biometric sensor. 
 
     
     
       15. The hardware memory device of  claim 13 , wherein the tampering event is triggered by another remote server distinct from the IHS. 
     
     
       16. The hardware memory device of  claim 13 , wherein the tampering event is triggered in response to the other remote server receiving IHS usage data and identifying a pattern indicative of tampering in the IHS usage data. 
     
     
       17. The hardware memory device of  claim 13 , wherein the program instructions, upon execution, cause the IHS to:
 establish a secure communication channel with the remote server; 
 transmit the public key-encrypted derived container key to the remote server; 
 receive a decrypted derived container key from the remote server in response to the remote server decrypting the public key-encrypted derived container key using a private key associated with the digital certificate; and 
 restore access to the secure storage by replacing the public key-encrypted derived container key with the decrypted derived container key. 
 
     
     
       18. A method, comprising:
 receiving a digital certificate from a remote server, wherein the digital certificate includes a public key; and 
 in response to a detection of a tampering event with regard to the IHS, encrypting a derived container key using the public key received from the remote server, wherein the derived container key is used to encrypt a container of a secure storage device. 
 
     
     
       19. The method of  claim 18 , further comprising:
 detecting the tampering event using a sensor comprises one or more of: a current sensors, a voltage sensor, a movement sensor, a pressure sensor, a microphone, a temperature sensor, an optical sensor, or a biometric sensor. 
 
     
     
       20. The method of  claim 18 , further comprising:
 establishing a secure communication channel with the remote server; 
 transmitting the public key-encrypted derived container key to the remote server; 
 receiving a decrypted derived container key from the remote server in response to the remote server decrypting the public key-encrypted derived container key using a private key associated with the digital certificate; and 
 restoring access to the secure storage by replacing the public key-encrypted derived container key with the decrypted derived container key.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.